Presentation is loading. Please wait.

Presentation is loading. Please wait.

Copyright © 2007-08 Lockstep Technologies Pty Ltd Lockstep Stepwise Introduction to de-identification solution Stephen Wilson Lockstep Technologies Pty.

Similar presentations


Presentation on theme: "Copyright © 2007-08 Lockstep Technologies Pty Ltd Lockstep Stepwise Introduction to de-identification solution Stephen Wilson Lockstep Technologies Pty."— Presentation transcript:

1 Copyright © Lockstep Technologies Pty Ltd Lockstep Stepwise Introduction to de-identification solution Stephen Wilson Lockstep Technologies Pty Ltd

2 Copyright © Lockstep Technologies Pty Ltd Now … What’s your full name? Your date of birth? Your billing address? The supplementary card holder? Your mother’s maiden name? Your credit limit? What’s the CCV number? Now … What’s your full name? Your date of birth? Your billing address? The supplementary card holder? Your mother’s maiden name? Your credit limit? What’s the CCV number? Our numbers are under attack! Good morning Madam. Can I start with your account number please? Sure, it’s OK, thanks for that. The more personal details we divulge to prove our identity, the greater the leakage and the risk gets worse!

3 Copyright © Lockstep Technologies Pty Ltd Meds: Anti-coagulant Notarised by: Dr Blogs Issued on: Health & Welfare Access Card CCN Issued by: Acme Bank Issued on: Gold Credit Card Safety in numbers! When a number is quoted on its own, nobody can tell if it’s real, or stolen and replayed, or simply made up. Stepwise encapsulates personal data – like a credit card number or any customer reference number – with a two- fold “pedigree”. Firstly, Stepwise shows who issued the number in the first place, to prove its bona fides. Secondly, Stepwise names the particular type of personal security device on which the data has been carried, and thus safeguarded against theft or replay. Other types of important personal data can have their pedigree similarly assured. For instance, medications data can be notarised by a qualified healthcare professional and secreted on a smartcard.

4 Copyright © Lockstep Technologies Pty Ltd Benefits of Stepwise In e-government: Eliminates the major political risks associated with privacy fears Transforms ID cards into friend of the citizen, not agent of government Creates a potent strategic weapon against identity theft; demonstrates government leadership Increases confidence in government online Increases card utility card with e.g. health identifiers, proof-of-age etc. Brings new revenue potential through commercial applications enabled by privacy architecture; enhances ROI on smartcards Transparent, uncomplicated security model, readily verifiable, and capable of attracting cross-sector support from diverse stakeholders.

5 Copyright © Lockstep Technologies Pty Ltd Benefits of Stepwise In e-commerce and payments: Vastly improved customer experience: simpler, faster, ATM-like Greatly reduced risk of Card Not Present payments fraud Increased confidence in shopping online Radically better privacy protection, reduced disclosure of extraneous personal details; reduced incentive for identity theft For e-merchants – better compliance with PCI obligations, lower cost For e-merchants & banks – simpler, lower cost implementation; less reliance on centralised authentication servers For banks – enhanced ROI on Chip-and-PIN (EMV) cards.

6 Copyright © Lockstep Technologies Pty Ltd A/C No Acme Bank Access Card CRN Govt Agency B Access Card UHI Health Dept Access Card Pt ID Health D/B Access Card Policy xzy Insurance Access Card Meds: Anti-coagulant Dr Blogs Access Card CRN AAA Govt Agency A Access Card Allergies: Penicillin Dr Blogs Access Card Identifiers and personal data encapsulated by Stepwise cannot be cloned, faked, or copied every capsule bears a tamper-proof pedigree, proving its data is authentic, was carried in an authentic smartcard, and was presented with the consent of the cardholder encapsulated data can be verified offline additional capsules can be added at anytime, memory allowing. Multiple Stepwise capsules

7 Copyright © Lockstep Technologies Pty Ltd Doctor’s surgery Patient Notes Patient : John Citizen Local ID: 1234 Age56 Next Kin:Joan Smith Notes: Angina BP:140/100 Cholesterol:7.1 Prescribe: Sotalol Sched fee:$40.00 Doctor fee: $60.00 Gap: $20.00 Patient Notes Patient : John Citizen Local ID: 1234 Age56 Next Kin:Joan Smith Notes: Angina BP:140/100 Cholesterol:7.1 Prescribe: Sotalol Sched fee:$40.00 Doctor fee: $60.00 Gap: $20.00 Govt Claim Date 2007/03/06 Provider No.: Item 666 Govt Agency A CRN AAA Transaction de-identification Stepwise capsules are bound to transactions through standard digital signatures. Each transaction bears the minimum personal data needed to authorise it, with no extraneous personal details. The contents of each capsule are “baked in” so their integrity can be verified by the receiver quickly and simply, offline.

8 Copyright © Lockstep Technologies Pty Ltd Home Order Date 2007/03/06 Item: 999 Amt $ Merchant Solving Card Not Present fraud CCN Issued by: Acme Bank Issued on: Gold Credit Card A Stepwise capsule issued by a bank to an EMV (Chip and PIN) smartcard can protect credit card numbers presented over the Internet. Each payment transaction bears an indelible copy of the genuine credit card number, ‘sealed’ by the smartcard. The number cannot be replayed against the merchant site by a fraudster.

9 Copyright © Lockstep Technologies Pty Ltd Notification Date 2007/03/06 Provider No.: Condition xyz Event Summary Sotalol Angine BP: 140/100 Chol: 7.1 Doctor’s surgery Patient Notes Patient : John Citizen Local ID: 1234 Age56 Next Kin:Joan Smith Notes: Angina BP:140/100 Cholesterol:7.1 Prescribe: Sotalol Sched fee:$40.00 Doctor fee: $60.00 Gap: $20.00 Patient Notes Patient : John Citizen Local ID: 1234 Age56 Next Kin:Joan Smith Notes: Angina BP:140/100 Cholesterol:7.1 Prescribe: Sotalol Sched fee:$40.00 Doctor fee: $60.00 Gap: $20.00 Govt Claim Date 2007/03/06 Provider No.: Item 666 CRN CRN AAA Insurance Claim Date 2007/03/06 Provider No.: Item abcdef Policy xyz Health Record Govt Agency B Govt Agency A Insurance Company UHI Deidentification Stepwise secured transactions cannot be cross linked. Each uses the relevant ID or customer reference number. There is no leakage of personal data between transactions or receivers.

10 Copyright © Lockstep Technologies Pty Ltd Home Registration Nickname: Bruce Online Social Networking service “Holder is Over 18” Anonymous Proof of Age An anonymous Stepwise capsule issued by a government agency can carry a simple tamper proof notarisation of the cardholder’s age, revealing no other personal information. The proof-of-age could be used when registering for age-restricted services (either adults or minors). Or it could be displayed by a handheld device at nightclubs and the like. Similarly, a capsule could also contain a photograph. “Holder is Over 18” Issued by: Government Agency Issued on: ID Card

11 Copyright © Lockstep Technologies Pty Ltd Technically, the three way binding of a card holder, a piece of personal data, and the issuer or notary of that data, is achieved using anonymous digital certificates. In the example, a bank has issued one of its customer with a digital certificate that identifies only their credit card number The Public Key in the certificate is associated with a unique Private Key generated and stored within the customer’s EMV smartcard. The certificate is signed by the bank, which will only issue this type of certificates to known customers holding current credit cards. Thus it is impossible to clone or counterfeit a Stepwise certificate – because each of them is linked to a different private key secreted inside a smartcard – or to substitute the name of another issuer or notary of the data – because each certificate is digitally signed. A conventional digital identity certificate will contain a complex “distinguished name” for the Subject, including their full name, nickname, address, organisation affiliations and so on. The Stepwise certificate on the other hand holds only a pseudonym, such as the credit card number, or any other Customer Reference Number, identifier, biometric template, or personal data. Note that the Certification Path can be used to create a chain of command from the issuer back to the peak scheme owner, adding an additional level of “branding” to each capsule. For example, the certificate issuer used to create Dr Blogs’ medic alerts could itself be signed by DHS, for added security against unauthorised issuers of data to Access Cards. How Stepwise capsules are created using anonymous digital certificates Under the covers Copyright © 2007 Lockstep Technologies Pty Ltd

12 Copyright © Lockstep Technologies Pty Ltd Stephen Wilson Lockstep Technologies +61 (0)


Download ppt "Copyright © 2007-08 Lockstep Technologies Pty Ltd Lockstep Stepwise Introduction to de-identification solution Stephen Wilson Lockstep Technologies Pty."

Similar presentations


Ads by Google